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A WIRELESS MOBILE PHONE WITH AUTHENTICATED MODE OF 
OPERATION INCLUDNIG FINGER PRINT BASED AUTHENTICATION 



FIELD OF THF INVENTION 
5 The present invention relates to the field of wireless mobile phones. More 

specifically, the present Invention is related to a wireless mobile phone having an 
authenticated mode of operation available only td.an authenticated user, in 
particular, a.user authenticated via the useifs finger print. 

10 RACKGROUNn ftp THE INVENTION 

Advances In microprocessor and telecommunication technology have led 
to wide spread deployment and adoption of mobile devices, such as wireless 
. mobile phones. For wireless mobile phones, in addition to wireless telephony, 
the late models are often equipped with advanced capabilities, such as calendar. 
1 5 address book, access to the Worid Wide Web (WWW), emafls. and so forth. 

Much of these functionalities are designed to increase the productivity of . 
business users. As a result, it is not surprising that business usere constitute a 
major user segment of wireless mobile phones, especially for the high-end 
function rich models. Increasingly, more business data, such as business 
20 contact infomiation, business plans, sales/mariceting strategies, financial reports, 
and so forth, are being stored on wireless nujbile phones. 

However, unlike personal computers or other computing devices, where 
user authentication, through e.g. user log-in. are routinely provided with virtually 
all operating systems, few if any operating systems of wireless mobile phones 
25 provide means to authenticate users. As a result, under the prior art, wireless 
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mobile phones are at risk of unauthorized usage, as well as data being 
compromised by unauthorized accesses. 

Thus, it will be desirable if protection against unauthorized access of user 
data and/or usage of wifeless mobile phones can be provided. 



BRIEF DESCRIPTION OF THE DRAWINGS 
The present invention will be described by way of exemplary 
embodiments, but not limitations, illustrated in the accompanying drawings in 
10 which like references denote similar elements, and in which: 

Figure 1 illustrates a front view of a wireless mobile phone incorporated 
with the teachings of the present invention, in accordance with one embodiment; 

Figures 2a-2b illustrate a top view and a side view of the power switch of 
Fig- 1, having an integrated finger print reader, in accordance with one 
15 embodiment; 

Figures 3a-3b illustrate two architectural views of the wireless mobile 
phone of Fig. 1, In accordance with one embodiment; 

Figures 4a-4b illustrate the operational flow of the relevant aspects of the 
operating logic of Fig. 3b, In accordance with one embodiment; 
.20 Figure 5 illustrates a front view of another wireless mobile phone 

incorporated with the teachings of the present invention. In accordance with an 
altemate embodiment; 

Figures 6a-6b illustrate two perspective views of another wireless mobile 
phone incorporated with the teachings of the present Invention, in accordance 
25 with yet another embodiment; 
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Figures 7a-7b Illustrate a front view and a side view of another wireless 
mobile incorporated with another aspect of the teachings of the present 

invention, in accordance with yet another embodiment; antJ 

Figures 8a-8b illustrate a front view and a back view of the identity card of 
Fig. 7b in further detail, in accordance with one embodiment. 



DETAILED DESCRIPTION OF EMBODIMENTS OF T HE INVENTION 
The present invention Includes a wireless mobile phone having an 
1 0 authenticated mode of operation, available only to an authenticated user, in 
particular, a user authenticated by the user's finger print. 

Parts of the description will be presented in temns commonly employed by 
those skilled in the art to convey the substance of their woric to others skilled In 
the art. The temi "wireless mobile phone" as used herein (in the specification 
15 and in the claims) refers to the class of telephone devices equipped to enable a 
user to make and receive calls wirelessly, notwithstanding the user's movement,- 
as long as the user is within the comrnunication reach of a sen/ice or base station 
of a wireless networi< service provider. Unless specifically excluded, the tenm 
"wireless mobile phone" is to include the analog subclass as well as the digital 
20 subclass (of all signaling protocols). 

In the following description, various aspects of the present invention will 
be described. However, It will be apparent to those skilled in the art that the 
present invention may be practiced with only some or all aspects of the present 
invention. For purposes of explanation, specific numbers, materials and 
25 configurations are set forth in order to provide a thorough understanding of the 
present invention. However, it will be apparent to one skilled in the art that the 
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present invention may be practiced witliout tiie specific details. In other 

Instances, well-known features are omitted or simplified in order not to obscure 

the present invention. 

Various operations will be described as multiple discrete steps in tum, in a 
5 manner that is most helpful in understanding the present invention, however, the 

order of description should not be construed as to imply that these operations are 

necessarily order dependent. In particular, these operations need not be 

performed in the order of presentation. 

The phrase "In one embodiment" is used repeatedly. The phrase 
10 generally does not refer to the same embodiment, however, it may. The terms 

"comprising", "having" and "including" are synonymous, unless the context 

dictates otherwise. 

Referring now to Figures 1 and 3a-3b, wherein a front yiew and two 
15 architecture (intemal component) views of a wireless mobile phone of the present 
invention. In accordance with one embodiment, are shown. As illustrated, 
wireless mobile phone 100 of the present invention (hereinafter, simply phone 
100) is advantageously provided with operating logic 240 equipped in particular 
with security function 242, to operate phone 100 in at least an unauthenticated 
20 mode of operation and an authenticated mode of operation. 

While operating in the unauthenticated mode of operation, i.e. without 
having the user authenticated, operating logic 240 makes available only a limited 
or reduced set of functions, whereas under the authenticated mode of operation, 
i.e. having the user. authenticated, operating logic 240 makes available a more 
25 . expanded or the entire set of functions. 
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The exact constitution of the limited/reduced set of functions and the 
expanded/full set of functions is application dependent, which may vary from 
embodiments to embodiments. In one embodiment, the limited/reduced set of 
functions include only the ability to make an emergency call, such as a 91 1 call, 
5 Qthenwise, no otiier functions, including but not limited to making other calls, 
accessing calendar, email, text messaging, viewing and/or storing documerits, 
and so forth, are pennitted. These other functfons are availably only under the 
authenticated mode. 

In another embodiment, the limited/reduced set of functions may 
10 effectively be a null function set, excluding even the ability to make an 

emergency call, except for notification of the unautlienticated status of the user, 
and perhaps, inviting the user to authenticate himself/herself, by e.g. providing a 
finger print input. 

In various embodiments, in addition to the above described 
1 5 unauthentlcated and authenticated modes of operation, operating logfc 240 
further supports a provisfoning mode of operation, under which phone 100 is 
initially provisioned. Under the initial provisioning mode, conventional 
provisioning, such as configuring phone 100 for a particular wireless carrier, a 
particular subscriber and so forth, may be performed. Entoy into the initial 
20 provisioning mode may be effectuated in any one of a number of conventional 
approaches. 

Continue to refer to Figures 1 and 3a-3b, for the illustrated embodiment, 
phone 100 Is furttier advantageously equipped with finger print reader 232 to 
fedlitate a user to input his/her finger print, and security function 242 is equipped 
25 to authenticate tiie user by ttie user's inputted finger print. In other words, 

operating logic 240 operates phone 100 in ttie authenticated mode, and makes 
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available the expanded/full set of functionalities, only If the user has been 
authenticated by his/her finger print, othenMse, phone 100 is operated in the 
unauthenticated mode with onlya limited/reduced set of functionalities (except in 
the initial provisioning nnode). 
5 For the embodiment, operating logic 240, more specifically, security 

function 242, also supports the provision of a finger print, and its saving In the 
form of an image, for use as a reference to authenticate an inputted finger print 
for authentication of a user, and operation of phone 100 in the authenticated 
mode. In various embodiments, the saving of the reference finger print image is 
10 also supported under a special configuration mode, while operating in the 

authenticated mode. Entry Into the configuration mode (while operating.ln the 
authenticated mode) may also be effectuated in any one of a number of 
conventional means. 

Further, for the Illustrated embodiment, finger print reader 232 Is 
15 advantageously Integrated with power on/off button 122, to enable a user's finger 
print to be inputted seamlessly as part of the power-on process.. 

Moreover, for the illustrated embodiment, power on/off button 122 
(Integrated with finger print reader 232) is disposed at the top end surface of 
body 116 of phone 100. As yvill be described in more detail below, referencing 
20 Figs. 5 and 6a-6b In particular, power on/off button 122 (integrated with finger 
print reader 232) may be disposed on other surfaces of the body of a wireless 
mobile phone. 

Referring now also to Figures 2a-2b, wherein a top view and a side view 
of power on/off button 122 with Integrated finger print reader 232 is illustrated in 
25 further detail, in accordance with one embodiment. As illustrated, for the 
embodiment, power on/off button 122 includes transparent body 124 (which 
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transparency is represented by the hash lines) having flanges 126, which 

undersides Include contacts 142. Contacts 142 are employed to close/open 
. switch circuit 228, as power on/off button 122 is moved from a rest position to a 

depressed position. When closed, switch circuit 228 allows power from power 
5 supply 222 to be provided to from finger print reader 232 and other components 

202-212 of phone 100. When open, switch circuit 228 cutoffs power of power 

supply from finger print reader 232 and other components 202-212 of phone 100. 

Power on/off button 122 also includes a counterforce exerting means (not 

shown), such a^ a spring like assembly, to exert a counterforce to restore power 
10 on/off position 122 from the depressed position to Its rest position. 

For the embodiment, finger print reader 232 includes light source 234 and 

sensors 236. Light source 234 is employed to emit light, and sensors 236 are 
. employed to sense the emitted light (passing through transparent body 124 of . 

power on/off button 122) and reflected off finger 150 of the user (back through 
.1 5 transparent body 124 of power on/off button 122). In one embodiment, light 

source 234 comprises one or more light emitting diodes (LED), and sensors 236 

comprise an array of micro photo sensors. 

Sensors 236 output signals responsive to the reflected light sensed. The 

signals in turn are processed by DSP 204 into an image, more specifically, an 
20 input finger print image. Security function 242, executed by processor 202, in 

turn compares the input finger print image against the reference finger print 

image to authenticate the user. 

In alternate embodiments, non-optical finger print readers, such as 

capacitance based finger printer readers may be employed instead. For these 
25 embodiments, sensors 236 output signals responsive to the electrical interactions 

between the embedded capacitors and the user's finger, which vary according to 
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the print contour. The signals output by sensors 236 may be processed into a 
finger print data structure and/or image, in yet other embodinrients, other non- 
capacitance based, non-opticai finger print readers may be employed instead. 
Refening again to Fig. 1 and 3a-3b, additionally, phone 100 include 
5 conventional wireless telephony elements, including audio communication 
elements, such as ear speaker 112 and microphone 114, and non-audto 
communication elements, such as input l<ey pad 102 having a number of 
alphanumeric input keys and display 108. Further, the non-audio input elements 
may ftjrther include scroll button 105, selection buttons 106, and "talk" and "end 
1 0 tail^ buttons 1 04. These elements are disposed on various extemaL surfaces of 
body 116. • 

Externally, phone 100 may also include antenna 110. Keys of key pad 
102 may be sunounded by, or othenwise include illuminable light emitting diodes 
(LED) in their bacl^rounds. For the purpose of the present specification, the 
1 5 tenns "button" and "key" may be considered synonymous, unless the context 
cleariy indicates ottienA/ise. . . 

Internally, in addition to processor 202 and DSP 204, phone 100 also 
includes non-volatile memory 206, general purpose input/output (GPIO) interface 
208, and transmit/receive (TX/IRX) 212, coupled to each other, processor 202 
20 and DSP 204. via bus 214, and disposed on a circuit board 220. 

Except for novel manner ttiaf many of these elements, such as processor 
202, DSP 204 and so forth, are used in support of making the expanded/full set 
of functionalities available only to an authenticated user, the enumerated 
' elements otherwise perform ttieir conventional functions known in the art. 
25 Non-volatile memory 206 Is employed to store programming instructions 

and optionally, working data, induding operating logic 240 and its security 



Attorney Docket No: 109909-132415 
IPONo:P0S3Z 



Impress Mail No: 
-EL6926490S6US 



function 242. Working data may Include callee/messaging party or parties (e.g. 
their phone numbers or IP addresses) with whom user may communicate. 
Working data may include the reference and input finger print images of the user. 

Processor 202. assisted by DSP 204, is employed to operate phone 100. 
executing operating logic 240, Including security function 242. 

Keys of key pad 102 may be employed to enter alphanumeric data, 
including entering a sequence of alphanumeric date for the phone number or 
address of a "callee". Selected sequence of the keys (such as "*#") may also be 
employed to denote a user Instruction to return to the unauthenticated mode of 
operation, if entered while operating in the authenticated mode of operation, or to 
return to the authenticated mode of operation, if entered while operating in the 
unauthenticated mode of operation (provided the user is authenticated). 

Scroll key 105 and companion selection keys 106 may be employed to 
scroll and select various options or list items of various rnenu options or selection 
lists, including scrolling and selecting list items presented for user Interactions to 
verify the user's wellness. For the embodirnent, scroll key 105 may be selected 
in one of two positions, an "up" position or a "down" position for scrolling a 
selection list in an "up" direction and a "down" direction respectively. Similariy, 
scroll and selection keys 105/106 may also be employed to select a menu item to 
convey a user instniiction to return to the unauflienticated mode, if the selection is 
made while operating in the authenticated mode, or to return to the authenticated 
mode, if the selection is made while operating in the unauthenticated mode 
(provided the user is authenticated). 

GPIO 209 may be employed to generate input signals, such as a 
corresponding "alphanumeric" signal In response to a user selection of one of the 
keys of key pad 102, a "scroir signal" (or more specifically, a "scroll up" or a 
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"scroll down" signals) In response to a user selection of scroll key 1 05, a 
"selection" signal in response to a user selection of select button 106. and so 

forth, ' - 

TX/RX 212 may be employed to transmit and receive communication 
5 signals for a call and/or a text message. TX/RX 21 2 may be a radio frequency 
transceiver, and support one or more of any of the known signaling protocols, 
including but are not limited to CDMA, tDMA. GSM. and so forth. 

The constitutions of these elements are known, and will not be further 
described. 

10 As to operating logic 240, including security function 242, it may be 

implemented in the assembly or machine instnicHons of processor 202, or a high 
level language that can be compiled Into these assembly or machine languages. 

Accordingly, except for the enhancements provided, phone 100 othenwise 
represents a broad range of wireless mobile phones, including both the analog 

15 as well as the digital types (of all signaling protocols), substantially rectangular 
uni-body as illustrated, or curved uni-body. as well as multi-portions, such as Hip 
phones" to be illustrated later. 

Figure 4 illustrates the operational flow of the relevant aspects of 
20 operating logic 240, in accordance with one embodiment As Illustrated, on start 
up/reset (such as depression of power on/off button 122 by a user), operating 
logic 240 enables phone 100 to operate in the earlier described unauthentfcated 
mode, making available only a limited/reduced set of furictionalities, block 402. • 
Thereafter, operating l6gic 240 waits for additional user input, block 404. 
25 Recall from earlier description, on closure of switch circuit 228. power is 

provided to finger print reader 232 and other components 102-212 of phone 100. 
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Thus, If a user continues to keep his/her finger on power oh/off switch, even after 
closing switch circuit 228 and powering on phone 100, integrated finger print 
reader 232, supported by DSP 204, enables a finger print image to be 
seamlessly inputted for user authentication. 
5 Accordingly, on receipt of inputs, operating logic 240 detenmines if the 

input is finger print input provided via finger print reader 232, blocl< 406. In 
various eml)odiments, processor 202 may be notified (e.g. interrupted) by DSP 
204 upon completion by DSP 204 in generating an input finger image. 

If the user input is a finger print image, operating logic 240 (or more 
10 spedficaiiy. security function 242) determines if phone 100 is operating in the 
unauthenticated mode, within the configuration mode of the auttienticated mode, 
or the initial provisioning mode, biocic 407. 

If phone 100 is determined to be operating in either, the configuration . 
mode within the authenticated mode, or the initial provisioning mode, operating 
1 5 logic 240 (or more specifically, security function 242) saves the inputted finger 
- print image as a reference finger print image, block 408. 

If phone 100 is determined to be operating in the unauthenticated mode, 
operating logic 240 (or more specifically, security function 242) initiates the finger 
print based authentication process, authenticating the user by comparing the 
20 received input finger print image, against the previously saved reference finger 
print image, block 409. 

If the inputted finger print image does not substantially match the 
previously saved reference finger print image, block 410, operating logic 240 (or 
more specifically, security.functton 242) reports the authentication failure, block 
25 412, and continues to operate phone 100 in the unauthenticated mode at block 
404. 

12 
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However, if the inputted finiger print Image substantially matches the 
previously saved reference finger print image, block 410. operating logic 240 (or 
more specifically, security function 242) enables phone 100 to operate in the 
authenticated mode, block 414. Thereafter, operating logic 240 continues 

5 operatton at btock 404. 

The precision level at which an inputted finger print image i^ to be 
considered substantially matching with a reference finger print image is 
application dependent. Preferably, different user selectable precision levels are 
offered. As with other user selectable options, the selection may be facilitated in. 
1 0 any one of a number of known user selection techniques. 

Back at block 408. if the input is detemilned not to be finger print input, 
operating logic 240 detemiines if the input is a user instnjcBon to return to ttie 
unauthenticated mode of operation (e.g. a user selecting or inputting such 
command using alphanumeric keys 102 and/or scroll/select keys 105 and 106 
15 while operating in an authenticated mode of operatfon). block 416. 

If the input is detemilned to be a user instruction to return to the 
unauthenticated mode of operation, operating logic 240 (or more speciftoally. 
security function 242) returns phone 100 to operate in the unauthenticated mode, 
btock 418. Thereafter, operating logic 240 continues operation at block 404. 
20 In one. embodiment before exiting to the unauthenticated mode, operating 

logic 240 (or more specifically, security function 242) causes a user selectable 
-resume" (i.e. re-authentication) option to be rendered on display 108. Selectfon 
of ttie option is processed as if phone 100 is being powered on or reset. That is, 
operating logic 240 causes a finger print of the user to be read and inputted. 
25 If the input is determined to be other user inputs, operating logic 240 

handles the ottier user inputs In an applicatfon dependent manner, block 420. In 

13 
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particular, if the input is a user instruction to return to the autlientioated mode of 
operation, operating logic 240 continues operation at block 404, and awaits for 
finger pririt input. If the Input is other conventional inputs, the inputs are 
processed as in the prior art. Thereafter, operating logic 240 continues operation 
5 at block 404. 

Figure 5 illustrates another embodiment of the wireless mobife phone of 
the present invention. More specifically. Fig- 5 illustrates a front view of the 
alternate embodiment. The alternate embodiment is substantially that of the 
10 embodiment of Fig. t. except that phone 100 is substantially rectangular in 

shape, whereas phone 500 has a curved shape. Also, power on-off button 522 
with integrated finger print reader is disposed at a side surface of body 51 6 of 
phone 500 instead. 

1 5. Figures 6a-6b illustrate yet another embodiment of the wireless mobile 

phone of the present invention. More specifically. Fig. 6a-6b illustrate two 
perspective views of the embodiment. The embodiment is also substantially that 
of the embodiments of Figs. 1 and 5, except that phone 100 is substantially 
rectangular, phone 500 has a cun^e shaped body, whereas phone 700 has a 

20 multi-section body. The multi-section form factor includes a first section 716b 
and a second section 716c, and the second section 716c is further comprised of 
at least two sub-sections 716d-716e. The first and second sections 716b-716c 
may pivot towards each other as denoted by direction arrow 706a or away from 
each other opposite to thfe direction denoted by arrow 706a. Sub-section 71 6d 

25 may rotate relative to sub-section 71 6e as denoted by the directions denoted by 
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arrows 706b. In other words, phone 700 may be considered as an Improved 
version of what is commonly refen-ed to as "flip" phones. 

Similar to the eariier described embodiments, phone 700 is provided with 
operating logic having a security function as earlier described, and power on/off 
button 722 with an integrated finger print reader. Except, power on/oft button 
722 with the integrated finger print reader is disposed at a front surface of lower 
section 716c of phone 700 instead. 

In altemate embodiments, second section 716c may be a uni-section. I.e. 
It is not further sub-divided into to relatively pivotable sub-sections. 

In yet other embodiments, the reference figure print Image may be 
provided to the wireless mobile phone in a secure manner, e.g. read from an 
identity card, via an identity card reader additionally provided to the wireless . 
mobile phone. 

Figures 7a-7b illustrate one such embodiment. As Illustrated In Fig. 7b, 
wireless mobile phone 100 is additional endowed with an identity card reader 
740. Identity card reader 740 (optionally, assisted by a device driver additionally 
provided to supplement operating logic 240) is equipped to retrieve the eariier 
described reference finger print Image from identity card 742. 

PrBferably, identify card 742 has a fbmfi factor that Is difficult to forge, and 
its issuance is governed by a secured process.. Resultahtly. security for wireless 
mobile phone 100 is further enhanced. 

For the embodiment, identity card 742 comprises a smart electronic card 
744 (commonly refen^ed to as a smart card) (see Fig. 8a-8b). and the reference 
finger print Image Is pre-stored In the embedded smart card 744. Operating logic 
240 (optionally, supplemented by a conesponding reader device driver) retrieves 

15 
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the reference finger print image from embedded smart card 744, on detection of 
tlie presence of identity card 742. 

in various embodiments, tiie reference finger print image may be furtlier 
protected via encryption, requiring operating logic 240 to posses ttie proper 
5 decryption Icey to recover tiie reference finger print image after retrieval. 

In yet otiier embodiments, tiie reference finger print image may be furttier 
protected via an authentication protocol, requiring wireless mobile phone 100 to 
be equipped with the appropriate credential to authenticate itself to smart card 
744, before being allowed by smart: card 744 to access the pre-stored reference 
10 finger print image in smart card 744. 

In yet other embodiments, the reference finger print image may be 
imprinted on Identity card 742, and identity caixl reader 720 is an optical reader. 

In yet still other embodiments, the reference finger print image may be 
encoded via a magnetic strip disposed on a surface of identity card 742, and 
1 5 identity card reader 720 is a magnetic code reader. 

These are just a few example, other equivalent encoding/storing and 
reading/retrieving techniques may also be employed instead. 

Conclusion and Epiloaue 
20 Thus, It can be seen from the above descriptions, a novel wireless mobile 

phone that can afford protection against unauthorized access to user data and/or 
usage of the phone has been described. 

While the present invention has been described in terms of the foregoing 
embodiments, those slcllled in the art will recognize that the invention is not 
25 limited to the embodiments described. The present invention can be practiced 
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with modififcation and afteration within the spirit arid scope of the appended 
claims. 

In particular, the present invention may be practiced with the finger print 
reader (optical or othenwise) not being integrated with power on/off button, as 
well as employing addiUonal and/or other means to authenticate a user. 

. Thus, the description is to be regarded -as illustrative instead of restrictive 
on the present invention. 
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